function delete_page($del_id) { return; global $sql, $e107cache, $admin_log, $e_event; //if(!$sql->db_Select('page', '*', "page_id={$del_id}")) return; //$row = $sql->db_Fetch(); admin_update($sql->db_Delete("page", "page_id='{$del_id}' "), 'delete', CUSLAN_28, false, false); $sql->db_Delete('menus', "menu_path='{$del_id}'"); $e107cache->clear_sys('menus_'); $admin_log->log_event('CPAGE_03', 'ID: ' . $del_id, E_LOG_INFORMATIVE, ''); /*$url = e107::getUrl()->sc('page/view', $row, 'allow=page_id,page_title,page_sef'); if ($row['page_theme'] && $sql->db_Select('links', 'link_id', "link_url='".$url."'")) { $tmp = $sql->db_Fetch(); $sql->db_Delete('links', "link_id=".$tmp['link_id']); $e107cache->clear('sitelinks'); } */ $data = array('method' => 'delete', 'table' => 'page', 'id' => $del_id, 'plugin' => 'page', 'function' => 'delete_page'); $this->message = $e_event->triggerHook($data); }
if (($action == 'remove' || $action == 'whremove') && isset($_POST['ban_secure'])) { $sql->db_Delete('generic', "gen_type='failed_login' AND gen_ip='{$sub_action}'"); admin_update($sql->db_Delete('banlist', "banlist_ip='{$sub_action}'"), 'delete'); if ($action == "remove") { $action = 'list'; banlist_adminlog('02', $sub_action); } else { $action = 'white'; banlist_adminlog('05', $sub_action); } $writeBanFile = TRUE; } // Update the ban expiry time/date - timed from now (only done on banlist) if ($action == 'newtime') { $end_time = $id ? time() + $id * 60 * 60 : 0; admin_update($sql->db_Update('banlist', 'banlist_banexpires=' . intval($end_time) . " WHERE banlist_ip='" . $sub_action . "'")); banlist_adminlog('03', $sub_action); $action = 'list'; $writeBanFile = TRUE; } if ($writeBanFile) { /************************************************ update list of banned IPs *************************************************/ $ipAdministrator->writeBanListFiles('ip,htaccess'); if (!$ipAdministrator->doesMessageFileExist()) { $ipAdministrator->writeBanMessageFile(); // Message file must exist - may not on fresh site banlist_adminlog('08', ''); $emessage->add(BANLAN_33, E_MESSAGE_SUCCESS); }
/** * Update user (admin) permissions. * NOTE: exit if $uid is not an integer or is 0. * * @param integer $uid * @param array $permArray eg. array('A', 'K', '1'); * @return void */ function updatePerms($uid, $permArray) { global $admin_log; $sql = e107::getDb(); $tp = e107::getParser(); $modID = intval($uid); if ($modID == 0) { exit; } $sql->db_Select("user", "*", "user_id=" . $modID); $row = $sql->db_Fetch(); $a_name = $row['user_name']; $perm = ""; foreach ($permArray as $value) { $value = $tp->toDB($value); if ($value == "0") { if (!getperms('0')) { $value = ""; break; } $perm = "0"; break; } if ($value) { $perm .= $value . "."; } } admin_update($sql->db_Update("user", "user_perms='{$perm}' WHERE user_id='{$modID}' "), 'update', sprintf(ADMSLAN_2, $tp->toDB($_POST['ad_name'])), false, false); $logMsg = str_replace(array('--ID--', '--NAME--'), array($modID, $a_name), ADMSLAN_72) . $perm; $admin_log->log_event('ADMIN_01', $logMsg, E_LOG_INFORMATIVE, ''); }
<?php include dirname(__FILE__) . '/../modeles/administration/administration.php'; if (admin_secu($_SESSION['id']) == true) { include dirname(__FILE__) . '/../modeles/administration/admin_faq_edition.php'; if (isset($_POST['accept'])) { $quest = addslashes($_POST['question']); $rep = addslashes($_POST['reponse']); admin_update($_POST['id'], $quest, $rep); echo "<h2 style='color:red;text-align:center;'>Modifications enregistrées !</h2>"; } $Modif = admin_Allfaq($_GET['id']); // INCLURE LA VUE CORRESPONDANTE include dirname(__FILE__) . '/../vues/administration/admin_faq_edition.php'; } else { echo 'vous devez être administrateur pour acceder à cette page '; header("Refresh:2; url=index.php?page=accueil", true, 303); } // INCLURE LE MODELE CORRESPONDANT
function submit_mirror() { global $tp, $sql, $admin_log; define("SUBMITTED", TRUE); if (isset($_POST['mirror_name']) && isset($_POST['mirror_url'])) { $name = $tp->toDB($_POST['mirror_name']); $url = $tp->toDB($_POST['mirror_url']); $location = $tp->toDB($_POST['mirror_location']); $description = $tp->toDB($_POST['mirror_description']); $logString = $name . '[!br!]' . $url . '[!br!]' . $location . '[!br!]' . $description; if (isset($_POST['id'])) { admin_update($sql->db_Update("download_mirror", "mirror_name='{$name}', mirror_url='{$url}', mirror_image='" . $tp->toDB($_POST['mirror_image']) . "', mirror_location='{$location}', mirror_description='{$description}' WHERE mirror_id=" . intval($_POST['id'])), 'update', DOWLAN_133); $admin_log->log_event('DOWNL_13', 'ID: ' . intval($_POST['id']) . '[!br!]' . $logString, E_LOG_INFORMATIVE, ''); } else { admin_update($sql->db_Insert("download_mirror", "0, '{$name}', '{$url}', '" . $tp->toDB($_POST['mirror_image']) . "', '{$location}', '{$description}', 0"), 'insert', DOWLAN_134); $admin_log->log_event('DOWNL_12', $logString, E_LOG_INFORMATIVE, ''); } } }
function saveConf() { global $sql, $tp; $packID = $_POST['packID']; unset($_POST['sub_conf'], $_POST['packID']); $encoded_emotes = $tp->toDB($_POST); // $tmp = addslashes(serialize($encoded_emotes)); $tmp = e107::getArrayStorage()->WriteArray($encoded_emotes); if ($sql->db_Select("core", "*", "e107_name='emote_" . $packID . "'")) { admin_update($sql->db_Update("core", "`e107_value`='{$tmp}' WHERE `e107_name`='emote_" . $packID . "' "), 'update', EMOLAN_16, false, false); } else { admin_update($sql->db_Insert("core", "'emote_" . $packID . "', '{$tmp}' "), 'insert', EMOLAN_16, false, false); } }
} } if (isset($_POST['del_admin']) && count($_POST['del_admin'])) { $delid = array_keys($_POST['del_admin']); $aID = intval($delid[0]); $sql->db_Select("user", "*", "user_id= " . $aID); $row = $sql->db_Fetch(); if ($row['user_id'] == 1) { // Can't delete main admin $text = $row['user_name'] . " " . ADMSLAN_6 . "\n\t\t<br /><br />\n\t\t<a href='" . e_ADMIN_ABS . "administrator.php'>" . ADMSLAN_4 . "</a>"; $emessage->add($text, E_MESSAGE_ERROR); $ns->tablerender(LAN_ERROR, $emessage->render()); require_once "footer.php"; exit; } admin_update($sql->db_Update("user", "user_admin=0, user_perms='' WHERE user_id= " . $aID), 'update', ADMSLAN_61, LAN_DELETED_FAILED, false); $logMsg = str_replace(array('--ID--', '--NAME--'), array($aID, $row['user_name']), ADMSLAN_73); $admin_log->log_event('ADMIN_02', $logMsg, E_LOG_INFORMATIVE, ''); } if (isset($_POST['edit_admin']) || $action == "edit") { $prm->edit_administrator($row); } else { show_admins(); } function show_admins() { $sql = e107::getDb(); $frm = e107::getForm(); $ns = e107::getRender(); $mes = e107::getMessage(); $tp = e107::getParser();
} $plist = implode("|", $pagelist); $pageparms = $postcampaign . "^" . $_POST['banner_listtype'] . "-" . $plist; $pageparms = preg_replace("#\\|\$#", "", $pageparms); $pageparms = trim($_POST['banner_pages']) == '' ? '' : $pageparms; $cam = $pageparms; $logString = $postcampaign . '[!br!]'; } else { $cam = $e107->tp->toDB($_POST['banner_campaign'] ? $_POST['banner_campaign'] : $_POST['banner_campaign_sel']); } $logString .= $cam . '[!br!]' . $cli . '[!br!]' . $banImage . '[!br!]' . $banURL; if ($_POST['createbanner']) { admin_update($sql->db_Insert("banner", "0, '" . $cli . "', '" . $cLogin . "', '" . $cPassword . "', '" . $banImage . "', '" . $banURL . "', '" . intval($_POST['impressions_purchased']) . "', '{$start_date}', '{$end_date}', '" . intval($_POST['banner_class']) . "', 0, 0, '', '" . $cam . "'"), 'insert', BNRLAN_63, false, false); banners_adminlog('02', $logString); } else { admin_update($sql->db_Update("banner", "banner_clientname='" . $cli . "', banner_clientlogin='******', banner_clientpassword='******', banner_image='" . $banImage . "', banner_clickurl='" . $banURL . "', banner_impurchased='" . intval($_POST['impressions_purchased']) . "', banner_startdate='{$start_date}', banner_enddate='{$end_date}', banner_active='" . intval($_POST['banner_class']) . "', banner_campaign='" . $cam . "' WHERE banner_id=" . intval($_POST['eid'])), 'update', BNRLAN_64, false, false); banners_adminlog('03', $logString); } unset($_POST['client_name'], $_POST['client_login'], $_POST['client_password'], $_POST['banner_image'], $_POST['click_url'], $_POST['impressions_purchased'], $start_date, $end_date, $_POST['banner_enabled'], $_POST['startday'], $_POST['startmonth'], $_POST['startyear'], $_POST['endday'], $_POST['endmonth'], $_POST['endyear'], $_POST['banner_class'], $_POST['banner_pages'], $_POST['banner_listtype']); } /* DELETE ACTIONS */ if (isset($_POST['delete_cancel'])) { $emessage->addSession(BNRLAN_6); //redirect to main session_write_close(); header('Location:' . e_SELF); exit; } if ($action == "delete" && $sub_action && varsettrue($_POST['delete_confirm'])) { if ($sql->db_Delete("banner", "banner_id=" . intval($sub_action))) { $emessage->addSession(sprintf(BNRLAN_1, $sub_action), E_MESSAGE_SUCCESS);